dino69 Casino & Sportsbook Data Care

This page describes what we collect when you use dino69 and how we keep that data protected. We at dino69 collect minimal information—your email, password hash, and payment details—only to process your account, deposits, withdrawals, and game activity. We do not sell your data to third parties, and we do not use your information for marketing outside our platform unless you explicitly consent.

Our servers encrypt all communication between your phone and our systems using TLS 1.3. When you deposit via DANA, e-wallet, mobile banking, or bank transfer, your payment data passes through encrypted tunnels and never sits unencrypted on our servers. We store transaction records for three years to comply with anti-money-laundering regulations, then delete them unless a dispute or investigation is pending.

We process data on servers that may sit outside your jurisdiction. Indonesian law does not restrict data residency for gaming platforms operating in permitted zones, but we maintain the same encryption and access controls regardless of server location. Your data is your data; you have rights to access it, correct it, and request deletion, subject to legal obligations we must meet.

What We Collect on dino69

We collect your email address, a password (stored as a cryptographic hash, never in plaintext), your name, date of birth, and contact phone number when you create a dino69 account. This information is necessary to verify your identity, process your withdrawals, and contact you if needed. We do not require payment information upfront; you provide that only when you initiate a deposit.

For withdrawals, we collect proof of address (a utility bill or government-issued document) and a copy of your national ID. This is our KYC (Know Your Customer) verification and is mandatory under Indonesian financial regulations to prevent money laundering and fraud. We retain KYC documents for seven years, then delete them unless a regulatory inquiry or pending dispute requires longer retention.

We log your game activity—bets placed, results, winnings, losses—to calculate your account balance and settle disputes. We track login times, device type (Android, iOS, desktop), IP address, and general location (city-level, not precise coordinates) to detect unauthorised account access and prevent fraud. This data stays in our active systems for 90 days, then moves to archive for three years, then is deleted.

How We Use Your Data

We use your email to send account notifications—login alerts, withdrawal confirmations, bonus offers. You can opt out of marketing emails anytime via your account settings. We use your name and ID to verify your identity during KYC and to process your withdrawals. We use your payment method information to deposit funds and send withdrawals to the correct account.

We use your game activity data to calculate your balance, settle bets, and honour prize claims. We use your login history and device data to detect suspicious access patterns—for example, if we see your account logged in from Jakarta and then from Medan in the span of five minutes, we flag it as a potential compromise and may lock your account pending verification.

We use aggregate data (anonymised, not linked to individuals) to understand how players use dino69—which games are popular, when peak activity occurs around Liga 1 or Piala AFF events, how long sessions last. This helps us optimise our platform. We do not use individual data for this; we strip identifiers before analysing trends.

Active data retention

Transaction logs, login history, and game activity stay in our main database for 90 days.

Archive retention

After 90 days, records move to archive for three years. Archive is accessed only for dispute resolution or regulatory requests.

KYC retention

Identity documents (ID, proof of address) are kept for seven years per Indonesian financial regulations.

Deletion upon request

You can request account deletion anytime. We delete your personal data immediately unless legal holds or pending disputes require retention.

Third-Party Processors and Your Rights

We work with payment processors, banks, and game studios who receive your data only to the extent necessary to process your transactions. Your bank receives your withdrawal request and your account details. Payment processors (for mobile banking, local payment, online payment) receive your transaction reference and amount. Game studios receive anonymised session data but never see your name or identity. Each third party is contractually bound to protect your data and use it only for their contracted service.

Our servers are hosted on cloud infrastructure that sits in multiple regions. Your data may be processed across borders. We maintain encryption and access controls wherever your data lives. If you are concerned about data residency, contact our support team; we can discuss options.

You have the right to request access to all data we hold about you. Email our privacy team with "Data Access Request" in the subject line, and we will send you a full export within 14 days. You have the right to correct inaccurate information—update your email or address directly in your account settings, or contact support. You have the right to request deletion of your account and associated data, except where we are legally required to retain records (e.g., KYC for seven years, transaction logs for three years).

Cookies and Device Data

We use session cookies to keep you logged into dino69 on your phone or computer. These cookies expire when you close your browser or log out. We do not use tracking cookies or third-party cookies. We do not share cookie data with advertisers or analytics companies.

Our app may request permission to send push notifications. You control this in your device settings. We use push notifications to alert you of withdrawal confirmations, bonus offers, and login alerts from unfamiliar devices. Notifications are sent only when you have enabled them.

Security Practices and Data Breach Response

We encrypt all communication with TLS 1.3. Passwords are hashed using industry-standard algorithms and cannot be recovered even by our staff. We use two-factor authentication (optional but recommended) to add an extra security layer. Our servers are firewalled and access is restricted to authorised staff only.

If we discover a data breach, we notify affected users within 72 hours and inform relevant authorities as required by law. We work with cybersecurity firms to investigate and remediate. We do not attempt to hide breaches; transparency is our policy. Your withdrawal funds are held in segregated client accounts separate from our operating funds, so a breach to our systems does not put your balance at risk.

Our Commitment to dino69 Users

We are transparent about what we collect and why. We retain data only as long as necessary. We encrypt all sensitive information. We do not sell your data. We respect your privacy rights and provide clear mechanisms to access, correct, or delete your information. If you have privacy concerns or questions, contact our support team via in-app chat or email. We will respond within 24 business hours. During holidays like Idul Fitri or Idul Adha, response may take up to 48 hours.

This privacy policy applies to all users of dino69 in permitted jurisdictions. If you use dino69 from Jakarta, Surabaya, Bandung, or Medan, or anywhere our service is legal, this policy governs your data. If regulations change or we update this policy, we will notify you via email or in-app alert. Continued use of dino69 after such notification constitutes acceptance of the updated policy.

Related pages